The fastest path to value with AI
Senior Product Security Engineer
Location
Ukraine
Posted
10 days ago
Salary
0
Seniority
Senior
Job Description
Senior Product Security Engineer
DataRobot
• Drive day-to-day security while ensuring our platform meets the demands of our customers • Develop custom automation to manage security processes and implement "Secure-by-Design" processes in the CI/CD pipeline using Python • Identify, design, and implement controls to safeguard our containerized production environments • Deploy and manage product security testing tools for SAST, DAST, and SCA analysis • Conduct and automate end-to-end vulnerability, threat, and exploitability assessments for actionable fixes and mitigations in DataRobot products • Perform initial technical investigation for customer reports and security incidents, coordinating with Engineering and IT Security • Work directly with Sales & Support teams to resolve concerns regarding security exposure and architecture • Balance business needs with security rigor while maintaining strong professional relationships through clear, diplomatic communication.
Job Requirements
- 5-7 years of experience working in Product Security or Application Security roles
- Bachelor's in Computer Science, Cybersecurity, Information Systems, or a related field (or equivalent experience)
- Fluent in writing code using Python to build security automation
- Deep understanding of Linux containers (internals, security isolation)
- Experienced in Git-based collaboration and automating software delivery through CI/CD integration (Jenkins, Harness, or GitHub Actions)
- Familiarity with Kubernetes orchestration is strongly preferred
- Hands-on experience with common security tools such as Semgrep, Trivy, and Burp Suite
- Ability to reproduce vulnerabilities in a lab environment to demonstrate impact
- Strong ability to perform manual code reviews or AI assisted reviews in Python, Go, and Node.js, looking for flaws that automated tools might miss (e.g., broken access control or insecure business logic)
- Leveraged AI-driven automation to accelerate secure code development and scale security assessments across the SDLC
- Strong communication skills for guiding teams and liaising with various stakeholders.
Benefits
- Medical, Dental & Vision Insurance
- Flexible Time Off Program
- Paid Holidays
- Paid Parental Leave
- Global Employee Assistance Program (EAP) and more!
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Cybersecurity Tools Administrator
Accenture Federal ServicesWe believe in the power of change, harnessed in ways that matter for our country and communities.
• Proposing, developing, installing, managing, operating, maintaining, integrating, and configuring a suite of cybersecurity tools to support project network cybersecurity operations • Ensuring proper configuration and operation of tools • Monitoring resource utilization • Contributing to the deployment of new tools • Developing security plans and maintaining network architecture diagrams
• Review cloud and infrastructure security architectures • Assess AWS, firewall, virtualization, and endpoint security controls • Support vulnerability analysis and remediation recommendations • Validate security configurations and technical evidence • Provide guidance on network, server, and SaaS security best practices • Support security assessment and testing activities
• Provide technical leadership for Certification & Accreditation (C&A) and Risk Management Framework (RMF) activities supporting system authorization decisions. • Lead RMF strategy and authorization roadmap. • Guide NIST SP 800-37 lifecycle activities. • Identify NIST SP 800-53 security controls. • Validate FIPS 199 and FIPS 200 categorization. • Oversee SSP, Risk Assessment, ST&E, and authorization package development. • Provide interpretation of NIST, FIPS, and federal requirements.
Security Researcher III – Phishing
SpyCloudThe leader in operationalizing Cybercrime Analytics to prevent ATO, ransomware, and online fraud.
• Data Collection: Locate, target and recapture data from Phishing-as-a-Service (PhaaS) kits using a combination of human intelligence and platform sourcing. • Data Analysis: Apply data science techniques to understand the quality of sourced data, in order to refine and improve the PhaaS data sourcing pipeline. • Human Intelligence: Perform human intelligence techniques such as managing multiple alternate personas, actor engagements, and social engineering in support of data recapture efforts. • Security Analysis: Participate in the drafting of research blogs and analytical products to support customers and business objectives. • Security Research: Participate in security research including investigation of threat actors, PhaaS, and other critical research in support of SpyCloud’s priorities.
